-
Notifications
You must be signed in to change notification settings - Fork 20
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #9 from chegejames/master
enable cors for get requests
- Loading branch information
Showing
1 changed file
with
111 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,111 @@ | ||
| {{ range $port_map := .PROXY_PORT_MAP | split " " }} | ||
| {{ $port_map_list := $port_map | split ":" }} | ||
| {{ $scheme := index $port_map_list 0 }} | ||
| {{ $listen_port := index $port_map_list 1 }} | ||
| {{ $upstream_port := index $port_map_list 2 }} | ||
|
|
||
| {{ if eq $scheme "http" }} | ||
| server { | ||
| listen [::]:{{ $listen_port }}; | ||
| listen {{ $listen_port }}; | ||
| {{ if $.NOSSL_SERVER_NAME }}server_name {{ $.NOSSL_SERVER_NAME }}; {{ end }} | ||
| access_log /var/log/nginx/{{ $.APP }}-access.log; | ||
| error_log /var/log/nginx/{{ $.APP }}-error.log; | ||
| {{ if (and (eq $listen_port "80") ($.SSL_INUSE)) }} | ||
| return 301 https://$host:{{ $.NGINX_SSL_PORT }}$request_uri; | ||
| {{ else }} | ||
| location / { | ||
|
|
||
| gzip on; | ||
| gzip_min_length 1100; | ||
| gzip_buffers 4 32k; | ||
| gzip_types text/css text/javascript text/xml text/plain text/x-component application/javascript application/x-javascript application/json application/xml application/rss+xml font/truetype application/x-font-ttf font/opentype application/vnd.ms-fontobject image/svg+xml; | ||
| gzip_vary on; | ||
| gzip_comp_level 6; | ||
|
|
||
| ## Start CORS here. | ||
| if ($request_method = 'GET') { | ||
| add_header 'Access-Control-Allow-Origin' '*'; | ||
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; | ||
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range'; | ||
| add_header 'Access-Control-Expose-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range'; | ||
| } | ||
|
|
||
| ##End CORS | ||
|
|
||
| proxy_pass http://{{ $.APP }}-{{ $upstream_port }}; | ||
| proxy_http_version 1.1; | ||
| proxy_set_header Upgrade $http_upgrade; | ||
| proxy_set_header Connection "upgrade"; | ||
| proxy_set_header Host $http_host; | ||
| proxy_set_header X-Forwarded-Proto $scheme; | ||
| proxy_set_header X-Forwarded-For $remote_addr; | ||
| proxy_set_header X-Forwarded-Port $server_port; | ||
| proxy_set_header X-Request-Start $msec; | ||
| } | ||
| include {{ $.DOKKU_ROOT }}/{{ $.APP }}/nginx.conf.d/*.conf; | ||
|
|
||
|
|
||
| {{ end }} | ||
| } | ||
| {{ else if eq $scheme "https"}} | ||
| server { | ||
| listen [::]:{{ $listen_port }} ssl {{ if eq $.HTTP2_SUPPORTED "true" }}http2{{ else if eq $.SPDY_SUPPORTED "true" }}spdy{{ end }}; | ||
| listen {{ $listen_port }} ssl {{ if eq $.HTTP2_SUPPORTED "true" }}http2{{ else if eq $.SPDY_SUPPORTED "true" }}spdy{{ end }}; | ||
| {{ if $.SSL_SERVER_NAME }}server_name {{ $.SSL_SERVER_NAME }}; {{ end }} | ||
| {{ if $.NOSSL_SERVER_NAME }}server_name {{ $.NOSSL_SERVER_NAME }}; {{ end }} | ||
| access_log /var/log/nginx/{{ $.APP }}-access.log; | ||
| error_log /var/log/nginx/{{ $.APP }}-error.log; | ||
|
|
||
| ssl_certificate {{ $.APP_SSL_PATH }}/server.crt; | ||
| ssl_certificate_key {{ $.APP_SSL_PATH }}/server.key; | ||
| ssl_protocols TLSv1.2; | ||
| ssl_prefer_server_ciphers on; | ||
|
|
||
| keepalive_timeout 70; | ||
| {{ if and (eq $.SPDY_SUPPORTED "true") (ne $.HTTP2_SUPPORTED "true") }}add_header Alternate-Protocol {{ $.NGINX_SSL_PORT }}:npn-spdy/2;{{ end }} | ||
|
|
||
| location / { | ||
|
|
||
| gzip on; | ||
| gzip_min_length 1100; | ||
| gzip_buffers 4 32k; | ||
| gzip_types text/css text/javascript text/xml text/plain text/x-component application/javascript application/x-javascript application/json application/xml application/rss+xml font/truetype application/x-font-ttf font/opentype application/vnd.ms-fontobject image/svg+xml; | ||
| gzip_vary on; | ||
| gzip_comp_level 6; | ||
|
|
||
| ## Start CORS here. | ||
| if ($request_method = 'GET') { | ||
| add_header 'Access-Control-Allow-Origin' '*'; | ||
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; | ||
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range'; | ||
| add_header 'Access-Control-Expose-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range'; | ||
| } | ||
|
|
||
| ##End CORS | ||
|
|
||
| proxy_pass http://{{ $.APP }}-{{ $upstream_port }}; | ||
| proxy_http_version 1.1; | ||
| proxy_set_header Upgrade $http_upgrade; | ||
| proxy_set_header Connection "upgrade"; | ||
| proxy_set_header Host $http_host; | ||
| proxy_set_header X-Forwarded-Proto $scheme; | ||
| proxy_set_header X-Forwarded-For $remote_addr; | ||
| proxy_set_header X-Forwarded-Port $server_port; | ||
| proxy_set_header X-Request-Start $msec; | ||
| } | ||
| include {{ $.DOKKU_ROOT }}/{{ $.APP }}/nginx.conf.d/*.conf; | ||
|
|
||
| } | ||
| {{ end }}{{ end }} | ||
|
|
||
| {{ if $.DOKKU_APP_LISTENERS }} | ||
| {{ range $upstream_port := $.PROXY_UPSTREAM_PORTS | split " " }} | ||
| upstream {{ $.APP }}-{{ $upstream_port }} { | ||
| {{ range $listeners := $.DOKKU_APP_LISTENERS | split " " }} | ||
| {{ $listener_list := $listeners | split ":" }} | ||
| {{ $listener_ip := index $listener_list 0 }} | ||
| {{ $listener_port := index $listener_list 1 }} | ||
| server {{ $listener_ip }}:{{ $listener_port }};{{ end }} | ||
| } | ||
| {{ end }}{{ end }} |